* Posts by Charles 9

11166 posts • joined 10 Jun 2009

Judge uses 1st Amendment on Pokemon Go park ban. It's super effective!

Charles 9
Silver badge

Re: Exercising my 1st amendment rights ...

There's no limitation on the right of free speech written in the 1st Amendment, either, yet the Schenck decision found one anyway, implied, in that you can't use speech to deny the rights of others (the "Fire in a Crowded Theater" test). Since ANY large assembly of people raises the inherent potential to wreak havoc (the more people there are, the less chance any one will own up), there are laws in place to control such assemblies: laws which have survived challenges due to the need to protect the freedoms and rights of non-assemblers.

3
0

What is this – some kind of flashy, 3-bit consumer SSD? Eh, Seagate?

Charles 9
Silver badge

Re: I like to apply the rule of...

More like fear of being unable to get it back. Given the ephemeral nature of all things Internet, some of us are of the nature we should hold on in case things start disappearing, much like those viral videos that then get cut off at the source. You know what what say; better by far to have something you don't need than to need something you don't have.

2
0
Charles 9
Silver badge

Getting closer.

Definitely worth considering if the original drive wasn't that big to begin with, but as mine is 1TB the price tag for a replacement my size is still probably going to be too high to tempt me. And that's just the main drive. Large program and/or program data collections are still going to have to hold out on rust for the time being.

2
0

'Millions of IoT gizmos' wide open to hijackers after devs drop gSOAP

Charles 9
Silver badge

Re: Requires an incentive

What law? If they're extraterritorial, they're not subject to your laws.

0
0
Charles 9
Silver badge

Re: Maybe I'm growing into a grumpy cynic but...

Sounds all nice until the real world butts in. You know the old saying, "Good, Quick, Cheap. Pick any TWO." Problem is, the bean counters and higher-ups usually call dibs on the Cheap and Quick, figuring paying for the occasional flub is less than doing it Good. Leaving you kinda backed into a corner.

0
0
Charles 9
Silver badge

Re: Requires an incentive

But then, how do you stop Amazon and eBay. If you try to push them, they could push back and tick off lots of customers (and by extension, constituents), causing them to complain to their governments for being heavy-handed.

0
0
Charles 9
Silver badge

Re: Requires an incentive

And if the retailer has no physical presence, either, because it's an E-tailer stationed out of the country?

Of if it's a gray market where the devices are obtained straight from a manufacturer website again out of the country?

1
0
Charles 9
Silver badge

Re: Maybe I'm growing into a grumpy cynic but...

Oh? What about formally proven software?

0
0
Charles 9
Silver badge

Re: Of course it won't happen anytime soon

Simple. A car can kill someone. DIRECTLY, as in run them over. Until common IoT things cam directly kill someone, legislatures won't jump in.

3
3

China's 'future-proof' crypto: We talk to firm behind crazy quantum key distribution network

Charles 9
Silver badge

Re: Misses the point

But how much value? Knowing the message is compromised probably won't mean much if someone else knows the compromised message and because of this can preempt your intended goals.

If you REALLY want to get the message without the target knowing, then you need to take the "outside the envelope" approach and simply snag the message in a phase where it MUST be decrypted.

0
0
Charles 9
Silver badge

Re: Misses the point

But they still won't hold a candle to rubber-hose cryptanalysis and obtaining the data "outside the envelope".

3
0

Linus Torvalds may have damned systemd with faint praise

Charles 9
Silver badge

Then perhaps you can explain why almost everyone's sick of SysVInit (noticing it was last or next-to-last in all but one of the votes). What about SysV doesn't adhere to KISS or "Do One Thing"?

0
0
Charles 9
Silver badge

Re: US Portions

"Please explain. After paying for food here over rather more decades than I care to think about it comes as something of a surprise to find I never owned it."

Think about the old adage about bad beer; you don't BUY it, you just RENT it for a while. Similarly for food you eat; you don't buy some of it it because most it doesn't stay inside: leaving eventually one way or the other.

0
0
Charles 9
Silver badge

Re: no systemd here

So what happens if there's only ONE way to fix something AND it REQUIRES breaking everything?

0
0
Charles 9
Silver badge

Re: It's a phase young programmers go through

"No chance, they'd merge. And we'd definitely need to shoot what staggered out."

More like nuking from orbit, and even then there's no guarantees. It could evolve radiation resistance like a tardigrade.

2
0
Charles 9
Silver badge

Re: replacing init with something "sane"

"I would argue that it wasn't "init" that needed replacing, it was "rc"."

I was going to say, replacing the idea of fixed numeric runlevels with names (which can still be numeric) could at least be seen as a gradual progression (nothing too different from what's being used now, after all) and would allow the introduction of configurable flexibility (more than 5 runlevels if need be, or less if you want to KISS the system some).

2
0
Charles 9
Silver badge

Re: no systemd here

IOW, gestalt faults (or gestfaults, for short). Things that never show up individually but crop up when put together (the whole is worse than the sum of its parts). And that's another potential fault point for a process chain: "trusting the welds", so to speak, since you can't be sure the two programs were built by the same teams with the same goals and same philosophies and expectations. If they don't, and they don't explain everything, an edge case can hit where the sender sends something the receiver doesn't expect.

1
0
Charles 9
Silver badge

Re: no systemd here

Well, if the UNIX philosophy is "Do one thing and do it well," two questions bug me. One, how can one be sure the one thing a program is doing is actually doing it RIGHT. Doing one thing but doing it WRONG presents weak links in a process chain. Second, explain busybox.

0
3

Western Digital wins California court skirmish against Toshiba

Charles 9
Silver badge

Re: A lesson to be learned here:

"Don't sign contracts based on the people you're dealing with at the moment."

Problem is, we're not prescient. I don't think anyone could figure Toshiba as a whole would get into so much financial trouble so quickly. It's sorta like finding out a millionaire had turned penniless overnight over something that seemed like a great idea at the time. Or a close teetotaler friend having just one night of drinking and suddenly ending up with a legal mess worse than the Gordian Knot, including a gruesome DUI-based Vehicular Homicide charge.

IOW, some things you just CAN'T anticipate or you'd go insane.

4
0

Viking storms storage monastery wielding 50TB SAS SSD

Charles 9
Silver badge

Re: SOHO needs these capacities + replacement for RAID

RAID will still be needed because there remains a risk of a sudden catastrophic failure (like a controller failure). Erasure codes are meant for bit rot, not catastrophic failures.

0
0
Charles 9
Silver badge

Re: No pricing...

Maybe it's simply a case of, "If you have to ask, you can't afford it."

1
0
Charles 9
Silver badge

Re: Nice

But their reliability when they're mothballed can be hit or miss. Sometimes you spin up a drive that hasn't been used in a while and it...doesn't. Solid state drives can't suffer mechanical failures the way rust drives can, and controller failures can happen to ANY drive, so it's a wash there. One good question is the rate of bit rot between them. I try to address this by keeping error codes with my backups to deal with it if it pops up on occasion.

1
0
Charles 9
Silver badge

Re: Yay!

As the previous poster noted, WORM (or what I'd rather call WIRE, Write Infrequently, Read Extensively) is another valid use for a big drive with OK reads and lousy writes. Things like media archives where they often don't get changed once they get in but can get hammered a lot in the playback department. Reliability is a plus in that department.

0
0
Charles 9
Silver badge

Re: 50TB! I'll take twelvety.

What about packrats, though?

3
0

Rimini Street: Dispute with Oracle is contract law, not copyright

Charles 9
Silver badge

That probably wouldn't count as that would be considered two different formats of the same thing. One not intended for permanent storage.

OTOH, most programs MUST be stored to be usable. It's like with Microsoft and Windows in the past. HOW you got the copy wasn't as important as whether or not the KEY you have is legit.

1
0
Charles 9
Silver badge

Not quite. Each downloaded already had a license direct from the source, meaning they were LEGALLY entitled to a copy. Does it matter from where the copy comes?

5
0

AI vans are real – but they'll make us suck at driving, warn boffins

Charles 9
Silver badge

The manufacturer AND the programmer? Double dip?

0
0
Charles 9
Silver badge

Re: Complete or not at all...

Proportion doesn't matter so much if it's a matter of low incidence but high consequence.

0
0
Charles 9
Silver badge

That's still savings in labor costs. Now it's just a bottom-rung handler, not a tested, certified commercial driver.

0
1

Two-factor FAIL: Chap gets pwned after 'AT&T falls for hacker tricks'

Charles 9
Silver badge

Re: Yubikey + U2F

And it doesn't support NFC either? Many older phones lack the NFC capability.

0
1
Charles 9
Silver badge

Re: That's why NIST deprecated SMS authentication

Why the thing against forced password rotations (which IIRC are meant to close and/or detect any unknown breaches)?

0
1
Charles 9
Silver badge

Re: Yubikey + U2F

Assuming your phone takes USB OTG. This isn't a given. Remember the phone with the non-standard port?

0
1
Charles 9
Silver badge

Re: Yubikey + U2F

How do you use a YubiKey on your phone which has no USB ports?

0
1
Charles 9
Silver badge

"She'd got everyone listed with letters like SNB, FA, RA, DV (those are the ones I remember) which also related to the client. So if you called up as a customer and even if you gave the correct code word if you didn't sound like your acronym(s) Snobby (SNB), have a Foreign (FA) or Regional (RA) accent or Deep Voice (DV) then she'd be very wary."

How did the secretary handle things, though, when the voice change was for a legitimate reason (usual person was on vacation, for example)? False negative?

0
1
Charles 9
Silver badge

But now you're on the sliding scale. Make things TOO tight and you end up with complaints from people who can't get their business done because they've LOST their second factors and can't get a new one issued. Too tight or too loose, you end up losing business, and there's always the risk the medium is not happy but UNhappy: loose enough that accounts STILL get stolen, yet tight enough that people STILL complain too much about losing access.

0
1
Charles 9
Silver badge

And these always have to deal with human fallability. What happens the day you leave the fob at home on a crucial day you're hours away? Or what about the RSA attack which was apparently after secrets behind 2FA tokens so as to crack them?

0
3

JavaScript spec gets strung out on padding

Charles 9
Silver badge

Re: broken by design?

"I think JavaScript strings are UTF-16 internally. I don't think it could be done any other way."

Agreed. It's unfortunate, but not everything can be of uniform length. It's up to the user to handle edge cases accordingly. For example, if the string is expected to use mainly CJK characters, pad with the Idoegraphic Space (U+3000) which is meant for CJK typography. As for RTL languages, the main thing needed is consistency. As long as you keep the text uniform, just use the appropriate padding function. As for combining characters, Unicode already includes many precomposed characters, so this doesn't crop up as often as you think.

1
1

While USA is distracted by its President's antics, China is busy breaking another fusion record

Charles 9
Silver badge

Re: Flat Earth

"So really that argument would be that the Earth were flat if the commonly perceived 3 dimensions were, in fact, only two :)"

Which two, then, given we can physically measure three?

0
1

Russia, China vow to kill off VPNs, Tor browser

Charles 9
Silver badge

Re: The cause of the next world war

And then the nukes come down...

0
3

Former GCHQ boss backs end-to-end encryption

Charles 9
Silver badge

Re: Meanwhile ...

Yes, but what if your opposition is LOOKING for strange messages on the assumption they're up to no good? IOW, you not only have to hide the contents of the message but also the fact you're sending a clandestine message. There are only so many ways you can mangle the language in a public medium (and it's difficult to use extensive steganography, especially for a detailed message in a medium not under your control) before people start wondering. At least in WW2 there were codes being sent everywhere, including from overt official sources. Not as easy in a covert campaign.

0
0
Charles 9
Silver badge

Re: progress

It's extremely hard to hide electricity, especially in an environment where electricity costs money and efficiency is a go word.

0
2
Charles 9
Silver badge

Re: No longer in post -> Can speak truthfully

But the opponent is the government itself. As in they MAKE the laws. Anything you can make, they can UNmake (or work around). When your opponent is at that level, laws pretty much can't help you.

5
0

Web inventor Sir Tim sizes up handcuffs for his creation – and world has 2 weeks to appeal

Charles 9
Silver badge

Re: Capture system... between PC and monitor.

Not necessarily the USER. The user's DEVICE, yes, but not the user him/herself, and that's significant because the user may not necessarily have access to his/her own device (particularly the internals, think a black-box cryptoprocessor). The material is there, and the algorithm is known, but if the key is not presented in a way that the user can easily reach, then it's still a pretty tight system: like a peep show (look but don't touch).

0
2
Charles 9
Silver badge

Re: Consumer choice

But that makes a Hobson's Choice when the ONLY version of a product available is a DRM product: Take It Or Leave It. problem is, the Leaves are in the clear minority.

0
2
Charles 9
Silver badge

Re: Capture system... between PC and monitor.

Don't bother trying it with a 4K disc, though. IIRC they updated the standards so PC drives can't read the keys, only dedicated players can read them and all links on the chain (including the display) must use encrypted buses and protected data paths. They're really tying these things tighter than a miser's purse this time.

0
2
Charles 9
Silver badge

Re: Capture system... between PC and monitor.

Oh? Does it stay working even if hooked up to a BluRay drive. Game Capture cards depend on unencrypted streams. I have one myself, and it specifically notes it won't work on encrypted streams. And newer systems can detect when a repeater or splitter is present and block based on that.

1
2

Microsoft drops Office 365 for biz. Now it's just Microsoft 365. Word

Charles 9
Silver badge

Re: Inspire...

Unless someone us BARRED from using Google accounts for security reasons (eg. High security airgapped area). Plus what if a critical links DEMANDS use of MS products due to scripts or whatever (and has the power to resist any push to change, could even push back and terminate conteacts)?

1
6
Charles 9
Silver badge

Re: As if they didn't have enough

Well, to be fair, the cable companies get shafted, too. The channels themselves are owned by a few major conglomerates. For example, Discovery, TLC, ID, and a bunch of others are owned by one company, Disney owns the ESPN networks, all Disney networks, and several others (including the one that's still contracted to air The 700 Club). Basically put, THEY won't let the cable companies go a la carte, either (Especially Disney. They KNOW they hold one of the most demanded cable channels and make it a Hobson's Choice--you want ESPN? You take ALL our channels...OR NONE. Leave us and watch your customers defect).

5
0

Brit prosecutors ask IT suppliers to fight over £3 USB cable tender

Charles 9
Silver badge

Re: Buy local!

What about PUBLIC concerns where legislatures and taxpayers are going to have questions?

0
0

Tape lives! The tape archive bit bucket is becoming bottomless

Charles 9
Silver badge

Re: Price range

Except you have to account for the cost of the drive as well as most don't have one. And even taking into consideration most need SAS (server-grade drive tech, not available to most people) to keep it fed, you should see the price tags for recent LTO drives. Definitely NOT consumer-level stuff.

0
0

Forums

Biting the hand that feeds IT © 1998–2017